A leading Talent Acquisition Company in Saudi Arabia is looking for a talented Cyber Defense Center Analyst to join our esteemed team in Saudi Arabia. In this critical role, you will play a key part in monitoring, analyzing, and responding to cybersecurity incidents within an operational environment. Your expertise will help safeguard our clients’ information systems, and you'll work closely with other cybersecurity professionals to develop and enhance incident response strategies.

The Cyber Defense Center Analyst will be responsible for utilizing state-of-the-art security tools to detect, analyze, and mitigate potential threats and vulnerabilities. You will conduct thorough investigations into incidents, prepare reports, and collaborate with various stakeholders to improve overall security posture.

Your analytical skills and attention to detail will be vital as you support the mission of ensuring information security and defending against cyber threats.

Key Responsibilities

• Monitor security events from SIEM, tickets, email, and phone channels.
• Investigate and escalate incidents based on severity.
• Analyze cyber threat intelligence and emerging threats.
• Perform incident triage and provide remediation recommendations.
• Track and document cyber incidents.
• Support configuration and management of security monitoring tools (SIEM, NETFLOW, etc.).
• Collaborate with technical teams to enhance security systems and processes.
• Document security procedures, configurations, and incidents.

Knowledge

 Knowledge of cybersecurity considerations for database systems.

 Knowledge in Threat Hunting and MITRE ATT&CK Methodology.

 Knowledge of network traffic protocols, methods and management.

 Knowledge of cyber threat intelligence sources and their respective capabilities.

Skills

 Skill in SIEM query languages to do basic filtering etc.

 Skill in scripting – Python and PowerShell.

 Skill in security tools – commercial and open-source.

 Skill in safely and effectively conducting research using deep web.

 Skill in defensive technologies – NGFW, AV, VPN, IPS, NETFLOW, DAM, WAF, Proxy, and Web Abilities

 Ability to create signature rules such as Snort, Yara.

 Ability to create Sigma detection rules.

 Ability to determine whether CTI is reliable, valid and relevant. Cyber Security Expertise:

 Security Concepts: In-depth understanding of network security architecture, defense-in-depth principles, and incident response.

• Bachelor's degree in Cybersecurity, Information Technology, or a related field.
• Strong knowledge of security concepts, technologies, and best practices.
• Experience in incident response, threat hunting, or security monitoring.
• 4+ years of experience in cybersecurity with 2+ year in SOC/SIEM operations.
• The CDC Analyst monitors security events from the various SOC entry channels (SIEM, Tickets, Email and Phone) based on the security event severity
• Knowledge of network security, incident response, and MITRE ATT&CK.
• Proficiency in SIEM, scripting (Python, PowerShell), and security tools.
• Knowledge of network and application security, firewalls, intrusion detection systems, and other security technologies.
• Ability to work effectively under pressure and prioritize multiple tasks.
• Relevant industry certifications (e.g. CySA+, CEH, eJPT, eCIR, eTHP, SOC-200)
• A commitment to continuous learning and staying current with the evolving cybersecurity landscape.